CVE-2017-3813

A vulnerability in the Start Before Logon (SBL) module of Cisco AnyConnect Secure Mobility Client Software for Windows could allow an unauthenticated, local attacker to open Internet Explorer with the privileges of the SYSTEM user. The vulnerability is due to insufficient implementation of the access controls. An attacker could exploit this vulnerability by opening the Internet Explorer browser. An exploit could allow the attacker to use Internet Explorer with the privileges of the SYSTEM user. This may allow the attacker to execute privileged commands on the targeted system. This vulnerability affects versions prior to released versions 4.4.00243 and later and 4.3.05017 and later. Cisco Bug IDs: CSCvc43976.

CVSS v3 7.8 HIGH
CVSS v2.0 7.2 HIGH

7.8^/10

CVSS v3 : HIGH

V3 Legend

Vector : AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

7.2^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 3.9 / Impact : 10.0

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://www.securityfocus.com/bid/96145
http://www.securitytracker.com/id/1037796
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170208-anyconnect	Vendor Advisory
https://www.exploit-db.com/exploits/41476/

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.0.00048:::::::*
	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.0.00051:::::::*
	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.0.00052:::::::*
	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.0.00057:::::::*
	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.0.00061:::::::*
	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.1.00028:::::::*
	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.1.02011:::::::*
	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.1.04011:::::::*
	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.1.06013:::::::*
	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.1.06020:::::::*
	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.1.08005:::::::*
	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.2.00096:::::::*
	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.2.01022:::::::*
	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.2.01035:::::::*
	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.2.02075:::::::*
	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.2.03013:::::::*
	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.2.04018:::::::*
	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.2.04039:::::::*
	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.2.05015:::::::*
	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.2.06014:::::::*
	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.3.00748:::::::*
	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.3.01095:::::::*
	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.3.02039:::::::*
	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.3.03086:::::::*
	cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.3.04027:::::::*

History

No history.

Information

Published : 2017-02-09 17:59

Updated : 2023-12-10 12:01

NVD link : CVE-2017-3813

Mitre link : CVE-2017-3813

CVE.ORG link : CVE-2017-3813

JSON object : View

Products Affected

cisco

anyconnect_secure_mobility_client

CWE

CWE-862

Missing Authorization

CWE-264

Permissions, Privileges, and Access Controls

7.8 /10